关键信息 漏洞描述 - 漏洞类型: Cross Site Scripting (XSS) - 受影响的插件: WordPress CaptionPix Plugin - 受影响版本: <= 1.8 - 优先级: Medium priority - 风险: This vulnerability is moderately dangerous and expected to become exploited. 解决方案 - 自动缓解: Patchstack has issued a virtual patch to mitigate this issue by blocking any attacks until an official fix becomes available. - 移除和替换软件: This software was last updated over a year ago and will likely not receive further updates or fixes. 详细信息 - 软件: CaptionFix - 类型: Plugin - 漏洞版本: <= 1.8 - 修复: No 时间线 - 报告日期: 20 May 2023 - 早期警告发送给Patchstack客户: 29 Jun 2023 - 发布日期: 29 Jul 2023 其他 - 该软件可能已被废弃: This software is likely abandoned! - 建议: Urgently consider replacing the software with an alternative.